For full functionality of this site it is necessary to enable JavaScript. Here are the instructions to help you enable JavaScript in your web browser.

Feb. 14, 2018

TOPICS
ENTITIES
- Aetna, Inc.
- Fresenius Medical Care
PEOPLE
- Eric Schneiderman
INDUSTRIES
- Healthcare

Purchase a Reprint of this Article

NY AG and HHS Flex Regulatory Muscles in Recent Protected Health Information Breach Settlements

Vincent Pitaro
Cybersecurity Law Report

Recent enforcement actions against Aetna Inc. and Fresenius Medical Care Holdings, Inc. resulted in respondents agreeing to pay significant fines and to update their policies, procedure and training. These cases, brought by the Office of the Attorney General of the State of New York and the Office for Civil Rights of the U.S. Department of Health & Human Services, are an important reminder that human error is often a significant factor in data breaches and that physical security is a critical component of data privacy. In addition, the Aetna action is the most recent example of New York's active cybersecurity efforts. "New York has been on the leading edge of data security regulation. . . The Attorney General [] has been proactive," Patterson Belknap partner Craig A. Newman told the Cybersecurity Law Report. "It's fair to say that cyber is at the top of the state's regulatory agenda." We detail the breaches and settlement terms. See also “Takeaways From State AGs’ Record-Breaking Target Data Breach Settlement” (May 31, 2017).

To read the full article

Continue reading your article with a CSLR subscription.

Most-Read Articles

Apr. 3, 2024
Examining Utah’s Pioneering State AI Law
- Artificial Intelligence
Apr. 10, 2024
Practical Insights Direct From U.S. State Privacy Enforcers
- State Laws
Jan. 17, 2024
Tracking Technologies: Privacy Regulation, Enforcement and Risk
- Online Advertising
Mar. 13, 2024
Connecticut AG’s Report Highlights Enforcement Risks and Points to Action Steps for Companies
- State Laws
Mar. 20, 2024
Court Hands FTC Grounds to Curb Data Broker Sales
- FTC Enforcement

Spotlight on Trailblazing Women

To mark International Women’s Day 2024, women editors and reporters of ION Analytics interviewed outstanding women in the industries and jurisdictions we cover. In this part, Jill Abitbol, Managing Editor of the Cybersecurity Law Report and Anti-Corruption Report, features notable women in data privacy, cybersecurity, white collar defense, compliance and anti-corruption law, including Christina Montgomery, Leslie Shanklin, Palmina Fava, Alexandra Ross and Lucinda Low. Enjoy reading their inspiring remarks here.

We Celebrate Data Privacy Day 2024

Read the full brief here.

HOME

TOPICS

ABOUT US

Feb. 14, 2018

TOPICS

ENTITIES

PEOPLE